bugzilla-daemon at netfilter.org
2013-Aug-16 16:58 UTC
[Bug 846] New: ./nfqnl_test usage ! no activity shown
https://bugzilla.netfilter.org/show_bug.cgi?id=846
Summary: ./nfqnl_test usage ! no activity shown
Product: libnetfilter_queue
Version: unspecified
Platform: i386
OS/Version: RedHat Linux
Status: NEW
Severity: trivial
Priority: P5
Component: libnetfilter_queue
AssignedTo: netfilter-buglog at lists.netfilter.org
ReportedBy: donnjohn at us.ibm.com
Estimated Hours: 0.0
Hi,
I am trying to get your usermode example working on 3.10.3 kernel , and I
don't see any activity reported:
info:
[root at rh62-x86 utils]# cat /usr/share/pkgconfig/lib* | egrep
"Ver|Name"
Name: libmnl
Version: 1.0.3
Name: libnetfilter_queue
Version: 1.0.2
Name: libnfnetlink
Version: 1.0.1
Name: libnftables
Version: 1.0.0
[root at rh62-x86 utils]# pwd
/root/ntest/libnetfilter_queue/utils
insmod /lib/modules/`uname -r`/kernel/net/netfilter/nfnetlink_queue.ko
[root at rh62-x86 utils]# lsmod
Module Size Used by
nfnetlink_queue 7851 0
installed
Running nfqnl_test yields no captures:
[root at rh62-x86 utils]# ./nfqnl_test
opening library handle
unbinding existing nf_queue handler for AF_INET (if any)
binding nfnetlink_queue as nf_queue handler for AF_INET
binding this socket to queue '0'
setting copy_packet mode
< nothing >
Should I see activity if I ssh to the machine ?
Suggestions welcome .
ping me donnjohn att us ibm com
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
bugzilla-daemon at netfilter.org
2013-Aug-16 22:51 UTC
[Bug 846] ./nfqnl_test usage ! no activity shown
https://bugzilla.netfilter.org/show_bug.cgi?id=846
Phil Oester <netfilter at linuxace.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
CC| |netfilter at linuxace.com
Resolution| |INVALID
--- Comment #1 from Phil Oester <netfilter at linuxace.com> 2013-08-17
00:51:09 CEST ---
Unless you add iptables rules which jump to the QUEUE target, then you won't
see anything when running this test.
Please don't use bugzilla to ask usage questions - that is the purpose of
the
netfilter mailing list.
Closing.
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
bugzilla-daemon at netfilter.org
2013-Aug-19 14:41 UTC
[Bug 846] ./nfqnl_test usage ! no activity shown
https://bugzilla.netfilter.org/show_bug.cgi?id=846 --- Comment #2 from donnjohn at us.ibm.com 2013-08-19 16:41:52 CEST --- (In reply to comment #1)> Unless you add iptables rules which jump to the QUEUE target, then you won't > see anything when running this test. > > Please don't use bugzilla to ask usage questions - that is the purpose of the > netfilter mailing list. > > Closing.Thanks. -- Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching all bug changes.
bugzilla-daemon at netfilter.org
2013-Aug-19 22:41 UTC
[Bug 846] ./nfqnl_test usage ! no activity shown
https://bugzilla.netfilter.org/show_bug.cgi?id=846 --- Comment #3 from donnjohn at us.ibm.com 2013-08-20 00:41:58 CEST --- I posted the question to: netfilter at vger.kernel.org -- Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching all bug changes.
bugzilla-daemon at netfilter.org
2013-Aug-19 22:48 UTC
[Bug 846] ./nfqnl_test usage ! no activity shown
https://bugzilla.netfilter.org/show_bug.cgi?id=846
--- Comment #4 from Phil Oester <netfilter at linuxace.com> 2013-08-20
00:48:52 CEST ---
OK, but I had already answered your question:
Unless you add iptables rules which jump to the QUEUE target,
then you won't see anything when running this test.
So
iptables -I INPUT -p tcp --dport 22 -j QUEUE
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
bugzilla-daemon at netfilter.org
2013-Aug-20 15:42 UTC
[Bug 846] ./nfqnl_test usage ! no activity shown
https://bugzilla.netfilter.org/show_bug.cgi?id=846
donnjohn at us.ibm.com changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|RESOLVED |REOPENED
Resolution|INVALID |
--- Comment #5 from donnjohn at us.ibm.com 2013-08-20 17:42:03 CEST ---
nfqnl_test program works on Fedora 19 with a 3.10.7 kernel
It fails with a 2.6.32 :
[root at RH63-x86 utils]# ./nfqnl_test
opening library handle
unbinding existing nf_queue handler for AF_INET (if any)
error during nfq_unbind_pf()
Is this feature not available on 2.6.32 ?
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
bugzilla-daemon at netfilter.org
2013-Aug-20 15:43 UTC
[Bug 846] ./nfqnl_test usage ! no activity shown
https://bugzilla.netfilter.org/show_bug.cgi?id=846 --- Comment #6 from donnjohn at us.ibm.com 2013-08-20 17:43:39 CEST --- (In reply to comment #5)> nfqnl_test program works on Fedora 19 with a 3.10.7 kernel > It fails with a 2.6.32 : > [root at RH63-x86 utils]# ./nfqnl_test > opening library handle > unbinding existing nf_queue handler for AF_INET (if any) > error during nfq_unbind_pf() > Is this feature not available on 2.6.32 ?Specifically: [root at RH63-x86 utils]# uname -r 2.6.32-279.el6.i686 -- Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching all bug changes.
bugzilla-daemon at netfilter.org
2013-Aug-20 15:46 UTC
[Bug 846] ./nfqnl_test usage ! no activity shown
https://bugzilla.netfilter.org/show_bug.cgi?id=846 --- Comment #7 from donnjohn at us.ibm.com 2013-08-20 17:46:39 CEST --- (In reply to comment #6)> (In reply to comment #5) > > nfqnl_test program works on Fedora 19 with a 3.10.7 kernel > > It fails with a 2.6.32 : > > [root at RH63-x86 utils]# ./nfqnl_test > > opening library handle > > unbinding existing nf_queue handler for AF_INET (if any) > > error during nfq_unbind_pf() > > Is this feature not available on 2.6.32 ?Specifically: [root at RH63-x86 utils]# uname -r 2.6.32-279.el6.i686 [root at RH63-x86 utils]# lsmod | grep net nfnetlink_queue 6806 0 nfnetlink 3172 1 nfnetlink_queue -- Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching all bug changes.
bugzilla-daemon at netfilter.org
2013-Aug-20 23:56 UTC
[Bug 846] ./nfqnl_test usage ! no activity shown
https://bugzilla.netfilter.org/show_bug.cgi?id=846
Phil Oester <netfilter at linuxace.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|REOPENED |RESOLVED
Resolution| |WORKSFORME
--- Comment #8 from Phil Oester <netfilter at linuxace.com> 2013-08-21
01:56:44 CEST ---
Works fine on 2.6.32:
[root at localhost utils]# head -1 /etc/issue
CentOS release 6.3 (Final)
[root at localhost utils]# uname -r
2.6.32-279.el6.i686
[root at localhost utils]# ./nfqnl_test
opening library handle
unbinding existing nf_queue handler for AF_INET (if any)
binding nfnetlink_queue as nf_queue handler for AF_INET
binding this socket to queue '0'
setting copy_packet mode
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
bugzilla-daemon at netfilter.org
2013-Aug-21 12:15 UTC
[Bug 846] ./nfqnl_test usage ! no activity shown
https://bugzilla.netfilter.org/show_bug.cgi?id=846 --- Comment #9 from donnjohn at us.ibm.com 2013-08-21 14:15:08 CEST --- (In reply to comment #8)> Works fine on 2.6.32: > [root at localhost utils]# head -1 /etc/issue > CentOS release 6.3 (Final) > [root at localhost utils]# uname -r > 2.6.32-279.el6.i686 > [root at localhost utils]# ./nfqnl_test > opening library handle > unbinding existing nf_queue handler for AF_INET (if any) > binding nfnetlink_queue as nf_queue handler for AF_INET > binding this socket to queue '0' > setting copy_packet modeThanks. That is a good sanity check. -- Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching all bug changes.
Possibly Parallel Threads
- traffic distribution not happening in centos 6.5
- [Bug 845] New: checking for LIBNFNETLINK... configure: error: Package requirements (libnfnetlink >= 0.0.41) were not met:
- [Bug 743] New: Errors in compiling nfqnl_test.c
- forwarding packets to service in same host without using loopback network
- [Bug 837] New: Large ICMP packets are lost